Check I spent some time recently at an ISACA event in Scotland, just days after GDPR went live. The EuroCACS Conference is the premier conference for Audit/Assurance, COBIT, Compliance, Risk, Security, and Strategy/Governance professionals. With sessions covering everything from segregation of duties to GDPR to the dark web, a couple of points really stood out.

First, multiple presenters confirmed that despite increases in phishing, ransomware, and other types of external attacks, the majority of events happen internally. Ransomware makes great headlines, but common fraud and financial statement manipulation is still all too...

read more